I've been meaning to write this up for a while, and it's as much a reminder to me as it's meant to be useful to anyone else, but with DEFCON around the corner, I'm reformatting my laptop for the trip, so now's the best time.  I'm sure everyone has their own "routine" when setting up a new system.  This is my checklist for Kali Linux, which I use for security cons & ctfs, and is separate from my everyday OS installs.

Install with full-disk encryption
Never know when my laptop might go missing.  Even though I try not to have any personal information on it for cons, I figure it's better safe than sorry.   (For example, I typically have a VPN setup, I'd rather those keys not be copied.)

Install updates and missing packages
I enable 32-bit libs (dpkg --add-architecture i386) and make sure I have the latest packages (apt-get update && apt-get dist-upgrade).  Then I install a few packages I feel are "missing" (i.e., I always want):

• strace
• ltrace
• cryptsetup
• lvm2
• network-manager-openvpn-gnome
• byobu
• cinnamon
• ia32-libs
• virtualbox
• virtualbox-guest-additions-iso
• gnupg2
• opensc
• scdaemon
• ufw
• alsa
• gcc-multilib
• volatility
• kpartx
• yara-python
• gimp
• wine-bin:i386
• ldap-utils
• ecryptfs-utils
• python-hachoir-urwid

I also, of course, install Chrome and a few chrome extensions.

Dotfiles
I also install a bunch of dotfiles I keep in a git repository:

• .gnupg/gpg.conf
• .bashrc
• .gdbinit
• .vimrc
• .gitconfig
• .ssh/config